[sangnoir]

If Apple hypothetically agreed to iMessage backdoors, why would you trust the Telegram app updates served up by Apple's app store? Western government's can pretty much hack into any device they want - the only reason for backdooring messaging apps would be for dragnet surveillance, and I don't see big tech having the appetite for the bad publicity and lawsuits that will result when that inevitably becomes public

[codedokode]

Apple already has a kind of "backdoor": they store the keys for encrypted cloud backups in their cloud as well. They advertise that cloud data are encrypted but prefer not to mention that they also have a key to decrypt it. Even with the highest level of security [1] your contacts list in Apple Cloud are not encrypted. Why? Probably someone asked for this.

[1] https://support.apple.com/en-us/102651

[EduardoBautista]

No, it’s because the CardDAV standard was not created with encryption in mind. It’s also why calendar and mail are not encrypted in iCloud.

[codedokode]

CSV or PNG weren't created with encryption in mind, but one can easily encrypt them. Apple can always make their own proprietary protocol. This doesn't explain anything. However the version that the govt wants to be able to see who is in person't contact list explains it well.

[dijit]

If Apple did that, people like me would accuse them of EEE.

We don’t trust proprietary stuff because we’ve been burned by it, if there’s an open standard, even a worse one: use it.

If it’s really that bad, we need to improve the standard.

[codedokode]

As I understand, this protocol is used between an iPhone and iCloud and it being open or not doesn't change anything because there is no alternative iCloud or iPhone.

[dijit]

You’re mistaken, you don’t only connect to your iCloud from iPhones.

You connect from any compatible client; and the effort that has gone in to the Mail client for iOS means it’s a decent enough mail client for non-iCloud mail accounts too.

Apples closed ecosystem is mostly its developer tooling and iMessage.

[EduardoBautista]

CSV and PNG are not server protocols like CardDav, CalDav, and IMAP, they are file formats.

[lmm]

> If Apple hypothetically agreed to iMessage backdoors, why would you trust the Telegram app updates served up by Apple's app store?

I wouldn't. I don't trust Apple hardware or software, and I don't see why anyone who cares about these issues ever would. But fortunately Telegram runs on devices and OSes from a wide range of suppliers, many of which might be less open to the influences that apply to Apple.

[throwaway872175]

You can download Telegram straight from its website, if you're using Android. No need to trust a third-party.

[talldayo]

> I don't see big tech having the appetite for the bad publicity and lawsuits that will result when that inevitably becomes public

If your rationale against first-party backdoors relies on this logic, then you're in for a really big surprise when you read the Snowden leaks.